IETF Logo Mail Archive

Re: [v6ops] RFC4861 question - short prefixes in PIOs

"Pascal Thubert (pthubert)" <pthubert@cisco.com> Sat, 29 June 2019 05:05 UTC

Return-Path: <pthubert@cisco.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 557921202DD; Fri, 28 Jun 2019 22:05:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.5
X-Spam-Level:
X-Spam-Status: No, score=-14.5 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=TASe9xkS; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=wQU+fYVv
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Dg8fzoS_1jVH; Fri, 28 Jun 2019 22:05:00 -0700 (PDT)
Received: from rcdn-iport-3.cisco.com (rcdn-iport-3.cisco.com [173.37.86.74]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6FBBE1202DA; Fri, 28 Jun 2019 22:05:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=10091; q=dns/txt; s=iport; t=1561784700; x=1562994300; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=2m9qHUlhjV7MgKKzK0a4nxax5az2OgTQJqyE6FXQPck=; b=TASe9xkS+GlqoM0525HyUDwUsNKSFZSmGjXyoSEFJdChx5fToKflZiP5 ngaAfc8BDe2pMYO4/qEMGOl8vncgLG/SW8AUnk1HdheDdlNKWP1gsdy5N 3GHBZEdhR5UdCtxjS62q8TU3qyG4aZ7+r2Lbj4b+rHj+tSti8nQu2COec Q=;
IronPort-PHdr: 9a23:1RgFEhLiqI7fsGj7ANmcpTVXNCE6p7X5OBIU4ZM7irVIN76u5InmIFeBvKd2lFGcW4Ld5roEkOfQv636EU04qZea+DFnEtRXUgMdz8AfngguGsmAXFXnLOPgYjYmNM9DT1RiuXq8NBsdFQ==
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0BMAABt8BZd/5tdJa1mHAEBAQQBAQcEAQGBUwcBAQsBgUNQA2pVIAQLKAqEE4NHA4RSiguCNiWJS4klhFSBLoEkA1QJAQEBDAEBGAEKCgIBAYRAAheCaSM0CQ4BAwEBBAEBAgEFbYo3DIVLAQEEAQEQER0BASwLAQ8CAQgYJwMCAgIfBgsUEQEBBA4FGweDAAGBHU0DHQECAQubEAKBOIhgcYEygnkBAQWFEQ0LghEDBoE0AYRxhCSCSReBQD+BEScME4JMPoEEgRZHAQGCDoJdgliMEoJPhHyWFUAJAoIWkAiDchuCK4cajh6EEJJJjXgCBAIEBQIOAQEFgVA4gVhwFTsqAYJBgkEYg1mFFIU/coEpjWABgSABAQ
X-IronPort-AV: E=Sophos;i="5.63,430,1557187200"; d="scan'208,217";a="572650737"
Received: from rcdn-core-4.cisco.com ([173.37.93.155]) by rcdn-iport-3.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 29 Jun 2019 05:04:58 +0000
Received: from XCH-ALN-017.cisco.com (xch-aln-017.cisco.com [173.36.7.27]) by rcdn-core-4.cisco.com (8.15.2/8.15.2) with ESMTPS id x5T54wHp004354 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Sat, 29 Jun 2019 05:04:58 GMT
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by XCH-ALN-017.cisco.com (173.36.7.27) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Sat, 29 Jun 2019 00:04:58 -0500
Received: from xhs-aln-002.cisco.com (173.37.135.119) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Sat, 29 Jun 2019 01:04:50 -0400
Received: from NAM04-SN1-obe.outbound.protection.outlook.com (173.37.151.57) by xhs-aln-002.cisco.com (173.37.135.119) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Sat, 29 Jun 2019 00:04:49 -0500
ARC-Seal: i=1; a=rsa-sha256; s=testarcselector01; d=microsoft.com; cv=none; b=DgMgN4K5mlwXm/jk7zalhxMaJlwHLy/CIq63GO/zAUdFmlAJyPE31t4c6PoPVYQoM4+WaLY/UfVol/9gmD3vpfS4798+UWPsR3sVSTXqra7iiggv7oEkjLSNnP0Yn0gwt+bOwOkEvLt4EAUMDOZguMP3/FcKDGLKKn+7+zkPXAk=
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=testarcselector01; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=2m9qHUlhjV7MgKKzK0a4nxax5az2OgTQJqyE6FXQPck=; b=QQHcgn7fqQ4Wiq37hjvWlpqlt4wJNGRaHX/9c0mqhvkEyYV9YH4A+t+iWFN+sgPSdYulCyJZCX9IuGUdm3gwfwQxLEBX14/SKf6R8pvwbvUN7PEpWUHKTmsSDZORstSX7qrIEpHdtPt2Ny4oDzK0lRUJar//tx9YeI/qdDYySjk=
ARC-Authentication-Results: i=1; test.office365.com 1;spf=none;dmarc=none;dkim=none;arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=2m9qHUlhjV7MgKKzK0a4nxax5az2OgTQJqyE6FXQPck=; b=wQU+fYVv1qqh2zAHFIv48eNOTwDmdn2+M0fdOsTONjfBq9sV3OK32DgF0SYxL2MhQf3mmegTeQpZVXG/p5fqT0n5uBbqfJBErqiMb7DaMSzBdjmtUEu4sHYeUXEHtJ5huDj4KZ1uY86wZ3EUCC1sgSNQ1UOvMqeySkNFB+7ci5M=
Received: from MN2PR11MB3565.namprd11.prod.outlook.com (20.178.250.159) by MN2PR11MB3584.namprd11.prod.outlook.com (20.178.251.30) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2008.16; Sat, 29 Jun 2019 05:04:48 +0000
Received: from MN2PR11MB3565.namprd11.prod.outlook.com ([fe80::1ce9:1582:146c:c50a]) by MN2PR11MB3565.namprd11.prod.outlook.com ([fe80::1ce9:1582:146c:c50a%6]) with mapi id 15.20.2008.018; Sat, 29 Jun 2019 05:04:48 +0000
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: Mark Smith <markzzzsmith@gmail.com>
CC: Philip Homburg <pch-v6ops-9@u-1.phicoh.com>, Michael Richardson <mcr+ietf@sandelman.ca>, v6ops list <v6ops@ietf.org>, 6man <6man@ietf.org>
Subject: Re: [v6ops] RFC4861 question - short prefixes in PIOs
Thread-Topic: [v6ops] RFC4861 question - short prefixes in PIOs
Thread-Index: AdUsMmrDTybnqCimSw+vUa2pQYzWEwA/oh8AACeRagUAEVNtgAAI6X7x
Date: Sat, 29 Jun 2019 05:04:48 +0000
Message-ID: <6CDE2EF9-9106-45E6-BB87-209345898FBB@cisco.com>
References: <729f46ec4a8b419797e15bbdcac3e549@boeing.com> <4615.1561671634@localhost> <m1hgtnL-0000JLC@stereo.hq.phicoh.net>, <CAO42Z2xiOmQ9Lzp_jphW7rhpGw0ByO4vFTGLYyMbkm3Bkh2v1Q@mail.gmail.com>
In-Reply-To: <CAO42Z2xiOmQ9Lzp_jphW7rhpGw0ByO4vFTGLYyMbkm3Bkh2v1Q@mail.gmail.com>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=pthubert@cisco.com;
x-originating-ip: [91.69.164.91]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: f967ab36-5eaa-40a9-2509-08d6fc4f4f9d
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:MN2PR11MB3584;
x-ms-traffictypediagnostic: MN2PR11MB3584:
x-ms-exchange-purlcount: 1
x-microsoft-antispam-prvs: <MN2PR11MB3584033EC08263C736027ABBD8FF0@MN2PR11MB3584.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-forefront-prvs: 0083A7F08A
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(366004)(39860400002)(376002)(346002)(136003)(396003)(54014002)(189003)(199004)(54896002)(236005)(6306002)(7736002)(6512007)(6116002)(256004)(54906003)(6436002)(86362001)(966005)(3846002)(186003)(229853002)(8936002)(6486002)(68736007)(4326008)(14454004)(6916009)(14444005)(25786009)(486006)(2906002)(33656002)(66066001)(91956017)(446003)(11346002)(53936002)(476003)(81156014)(81166006)(6246003)(478600001)(2616005)(1411001)(66476007)(64756008)(36756003)(66556008)(76176011)(316002)(66446008)(66946007)(6506007)(606006)(73956011)(71190400001)(71200400001)(99286004)(26005)(8676002)(5660300002)(76116006)(66574012)(102836004)(244885003); DIR:OUT; SFP:1101; SCL:1; SRVR:MN2PR11MB3584; H:MN2PR11MB3565.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: jRAm/c2vtiZ4/LrMu0gsjSVHVtZun4U5/o86qKA2div1/LCnsPTU1YsAPEY1ievV/wtEjBwNwt8MPFRg9qzXXFT8t+DvWIcYKw5NqcLHmkdFYVK++L5iGbo4Y6wabdGJM0kIfO3/qjlmBOfQjhRIB8A9RZhjbEJLp2Ucd0fLkbmr/LJWdlMK8RVc59RsO3XD2YEuELbBsz1rVTArE0OnneUiMkMv8uVVOOhRe3pkQfXs46j/W2ziyrahUdvdzjWD0Em92nHCmfV+lrGvx+dgFyNCvjroCcXNp8oMTQiGtPxArG+l0Tyg5snRZ7Cyb5As0xgYS0ATYhfE7/CuHIMHNHda0kdvRASvrZ9ONCsEOm0dQ3mAkFSrLYx0yIsNbp0ETJskQUlAdrzzJZPcJesJ5P0xgFcv6ip1sLM7ibtA1zU=
Content-Type: multipart/alternative; boundary="_000_6CDE2EF9910645E6BB87209345898FBBciscocom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: f967ab36-5eaa-40a9-2509-08d6fc4f4f9d
X-MS-Exchange-CrossTenant-originalarrivaltime: 29 Jun 2019 05:04:48.4670 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: pthubert@cisco.com
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB3584
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.27, xch-aln-017.cisco.com
X-Outbound-Node: rcdn-core-4.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/R5Zy2PDXxvWtSLyi-hyHCI-5McU>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 29 Jun 2019 05:05:04 -0000

Hello Mark

Please keep in mind the use case is wireless (802.11OCB) and the router is a L3 AP. To your point:

On .11 the only direct connectivity that is known is STA to AP. A STA may or may not be reachable from another STA at the PHY layer depending on their relative location. In usual .11 they will not have unicast keys to talk to one another anyway. The L3 AP MUST NOT use redirects.

On OCB in particular there is neither L2 association nor L2 security. The only way for a L3 AP to know who’s there is the L3 association (aka registration, RFC 8505).

A fixed L3 AP (an RSU in OCB) may provide L3 connectivity to vehicles.

If the vehicle moves then it needs heuristics to figure the best router e.g., the most recently seen. When I implemented Mobile IP and NEMO in our routers some 15 years ago I had to place a number of non-standard heuristics in ND to make that work. One of them was to use the router that exposes a PIO as GW for packets that are sourced on the prefix in the PIO.

I started an IPv6 over wireless draft. There’s a lot that needs saying in there.

All the best,

Pascal

Le 29 juin 2019 à 02:50, Mark Smith <markzzzsmith@gmail.com<mailto:markzzzsmith@gmail.com>> a écrit :



On Sat., 29 Jun. 2019, 02:32 Philip Homburg, <pch-v6ops-9@u-1.phicoh.com<mailto:pch-v6ops-9@u-1.phicoh.com>> wrote:
>Hairpin'ing all traffic through the advertising router when L=0 seems like
>the only general solution.  But, I can imagine many situations where if a
>Neighbour Cache entry somehow existed, then it could be used.

Note that the router may send redirects. So in theory it is only the
first packet to a neighbor that needs to go through the router.


You'd have to switch them off in this case,.

That has also been a common thing to do in IPv4 in general. I can't exactly remember why, because it is so long ago that I learned to do it, however I expect it is to stop packets being punted to the control plane for redirect generation. Non-optimal forwarding or dropping, in particular in forwarding hardware, is cheaper than optimal forwarding and control plane load of generating redirects. It also probably creates a control plane DoS attack vector.



--------------------------------------------------------------------
IETF IPv6 working group mailing list
ipv6@ietf.org<mailto:ipv6@ietf.org>
Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
--------------------------------------------------------------------
--------------------------------------------------------------------
IETF IPv6 working group mailing list
ipv6@ietf.org<mailto:ipv6@ietf.org>
Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
--------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email